Tag: log4shell

Here you will find all the articles with the tag: log4shell.

Nearly 4,000 organizations still vulnerable to Log4Shell

Nearly 4,000 organizations still vulnerable to Log4Shell

About just over a third of enterprise applications that rely on Log4j libraries are still using a version vulnerable to Log4Shell. That's according to figures from Veracode. Many companies still have not addressed the Log4j vulnerability in their applications, which has been known for two years,... Read more

date4 months ago
Log4Shell in 2023: big impact still reverberates

Log4Shell in 2023: big impact still reverberates

Log4Shell hit the market hard at the end of 2021. According to a recent story we published, it's still one of the biggest vulnerabilities, 18 months after it initially appeared. How serious is the threat of Log4Shell in 2023? Log4Shell continues to haunt us. The exploitation of a vulnerability i... Read more

date11 months ago
Log4Shell still a big problem after nearly a year and a half

Log4Shell still a big problem after nearly a year and a half

According to Arctic Wolf research, the Log4Shell vulnerability is still being massively abused a year after it was identified. Arctic Wolf collected data on global threats, malware, digital forensics and incident response (IR) cases. This to determine the key threat trends of 2022. "Arctic Wolf ... Read more

date1 year ago
New Spring Java framework vulnerability could be next Log4Shell

New Spring Java framework vulnerability could be next Log4Shell

The zero day vulnerability allows remote code execution. A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, according to a report in Bleeping Computer. The vulnerability allows unauthenticated remote code execution on applications. ... Read more

date2 years ago
UK NHS warns of Log4j vulnerability in VMware Horizon

UK NHS warns of Log4j vulnerability in VMware Horizon

The UK's National Health Service (NHS) has issued a warning stating that hackers are actively exploiting Log4j vulnerabilities in unpatched VMware Horizon servers. Log4j vulnerabilities are everything but a concern of the past. The problem continues to claim victims. The UK NHS recently issued a... Read more

date2 years ago
Security researchers find new Log4Shell in H2 database software

Security researchers find new Log4Shell in H2 database software

Security organization JFrog has found a vulnerability in H2. The problem is similar to Log4Shell, the infamous threat in Log4j. H2 consoles on servers accessible from the outside can be abused for remote code execution (RCE). Multiple lines of code in H2 send urls to a 'javax.naming.Context.look... Read more

date2 years ago
1 2